AWS Cloud Prac. S.G Flashcards
1
Q
What is AWS Database Migration Service (DMS)?
A
AWS Database Migration Service (DMS) helps you migrate databases to AWS easily and securely.
2
Q
What is AWS OpsWorks?
A
AWS OpsWorks is a configuration management service that provides managed instances of Chef and Puppet.
Chef and Puppet are automation platforms that allow you to use code to automate the configurations of your servers.
3
Q
What is AWS Application Migration Service?
A
AWS Application Migration Service is a highly automated lift-and-shift (rehost) solution that simplifies the process of migrating applications from physical, virtual, and cloud-based infrastructure, ensuring that they are fully operational in any AWS Region without compatibility issues.
4
Q
What is AWS Application Discovery Service?
A
AWS Application Discovery Service helps enterprise customers plan migration projects by gathering information about their on-premises data centers.
5
Q
What is AWS Support Concierge?
A
Included as part of the Enterprise Support plan, the Support Concierge Team are AWS billing and account experts that specialize in working with enterprise accounts. The Concierge team will quickly and efficiently assist you with your billing and account inquiries, and work with you to help implement billing and account best practices so that you can focus on running your business.
Short Ans: AWS Support Concierge Service assists customers with account and billing inquiries.
6
Q
What is AWS Customer Service?
A
AWS Customer Service can help AWS customers with their billing and account inquiries, and it is included in all AWS support plans (Basic, Developer, Business, and Enterprise).
However, due to the fact that AWS Customer Service is not dedicated to specific types of inquiries, it is not as quick or as efficient as the AWS Support Concierge. AWS Support Concierge is available only for AWS Enterprise support subscribers and is dedicated only to help AWS customers with their billing and account inquiries.
7
Q
What is AWS Operations Support?
A
AWS Operations Support is an Enterprise support program that provides operations assessments and analysis to identify gaps across the operations lifecycle, as well as recommendations based on best practices.
8
Q
What is AWS Operations Support?
A
AWS Operations Support is an Enterprise support program that provides operations assessments and analysis to identify gaps across the operations lifecycle, as well as recommendations based on best practices.
9
Q
What is AWS Health Dashboard?
A
The AWS Health Dashboard (previously AWS Personal Health Dashboard) is the single place to learn about the availability and operations of AWS services.
You can view the overall status of all AWS services, and you can sign in to access a personalized view of the health of the specific services that are powering your workloads and applications. AWS Health Dashboard proactively notifies you when AWS experiences any events that may affect you, helping provide quick visibility and guidance to minimize the impact of events in progress, and plan for any scheduled changes, such as AWS hardware maintenance.
10
Q
What is AWS Infrastructure Event Managment?
A
AWS Infrastructure Event Management is a short-term engagement with AWS Support, included in the Enterprise-level Support product offering, and available for additional purchase for Business-level Support subscribers.
AWS Infrastructure Event Management partners with your technical and project resources to gain a deep understanding of your use case and provide architectural and scaling guidance for an event.
Common use-case examples for AWS Event Management include advertising launches, new product launches, and infrastructure migrations to AWS.
11
Q
What is Amazon EFS?
A
Amazon EFS is a file-level storage technology that provides massively parallel shared access to thousands of Amazon EC2 instances, enabling your applications to achieve high levels of aggregate throughput and IOPS with consistently low latencies.
12
Q
What is Amazon S3?
A
Amazon S3 is an object level storage built to store and retrieve any amount of data from anywhere – web sites and mobile apps, corporate applications, and data from IoT sensors or devices.
It is designed to deliver 99.999999999% durability, and stores data for millions of applications used by market leaders in every industry.
13
Q
What is Amazon EBS?
A
Amazon EBS is a block-level storage that provides storage volumes for use with Amazon EC2 and Amazon RDS instances.
14
Q
What is Amazon Instance Store?
A
An instance store provides temporary block-level storage for your EC2 instances. Instance store is ideal for temporary storage of information that changes frequently, such as buffers, caches, scratch data, and other temporary content.
15
Q
What is AWS Trusted Advisor?
A
AWS Trusted Advisor is an online tool that provides you real time guidance to help you provision your resources following AWS best practices.
AWS Trusted Advisor offers a rich set of best practice checks and recommendations across five categories: cost optimization; security; fault tolerance; performance; and service limits (also referred to as service quotas).
AWS Trusted Advisor improves the security of your application by closing gaps, enabling various AWS security features, and examining your permissions.
16
Q
What does AWS Trusted Advisor core security checks include?
A
1- Security Groups - Specific Ports Unrestricted.
2- Amazon S3 Bucket Permissions.
3- MFA on Root Account.
17
Q
What is the AWS Trusted Advisor core security check “Security Groups” do?
A
Security Groups - Specific Ports Unrestricted:
Checks security groups for rules that allow unrestricted access to specific ports. Unrestricted access increases opportunities for malicious activity (hacking, denial-of-service attacks, loss of data).
18
Q
What is the AWS Trusted Advisor core security check “Amazon S3 Bucket Permissions” do?
A
Amazon S3 Bucket Permissions:
- Checks buckets in Amazon Simple Storage Service (Amazon S3) that have open access permissions.
- Bucket permissions that grant List access to everyone can result in higher than expected charges if objects in the bucket are listed by unintended users at a high frequency.
- Bucket permissions that grant Upload/Delete access to everyone create potential security vulnerabilities by allowing anyone to add, modify, or remove items in a bucket. This check examines explicit bucket permissions and associated bucket policies that might override the bucket permissions.
19
Q
What is the AWS Trusted Advisor core security check “MFA on Root Account” do?
A
MFA on Root Account:
Checks the root account and warns if multi-factor authentication (MFA) is not enabled.
For increased security, AWS recommends that you protect your account by using MFA, which requires a user to enter a unique authentication code from their MFA hardware or virtual device when interacting with the AWS console and associated websites.
20
Q
What is AWS Shield?
A
AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS.
AWS Shield does not provide security recommendations.
21
Q
What is AWS Management Console?
A
The AWS Management Console is used to access and manage Amazon Web Services through a simple and intuitive web-based user interface.
The console itself doesn’t provide any recommendations
22
Q
What is AWS Secrets Manager?
A
AWS Secrets Manager is a secrets management service that enables you to store, retrieve, rotate, audit, and monitor secrets centrally.
AWS Secrets Manager allows you to manage secrets such as database credentials, on-premises resource credentials, SaaS application credentials, third-party API keys, and Secure Shell (SSH) keys.
AWS Secrets Manager does not provide security
23
Q
What is Disk disposal?
A
Disk disposal ( Storage Device Decommissioning): When a storage device has reached the end of its useful life, AWS procedures include a decommissioning process that is designed to prevent customer data from being exposed to unauthorized individuals.
All decommissioned magnetic storage devices are degaussed and physically destroyed in accordance with industry-standard practices.
24
Q
What must an IAM user provide to interact with AWS services using the AWS Command Line Interface (AWS CLI)
A
Access Keys
Access keys consist of an access key ID and secret access key, which are used to sign programmatic requests to AWS using the CLI or the SDK.
25
Hundreds of thousands of DDoS attacks are recorded every month worldwide. What service does AWS provide to help protect AWS Customers from these attacks?
AWS Shield, AWS WAF
26
What do Amazon Route 53, Amazon CloudFront, Elastic Load Balancing, and AWS WAF have in common?
They control and absorb traffic and deflect unwanted requests.
27
What is Amazon Cognito?
Amazon Cognito allows you to add user sign-up, sign-in, and access control to your web and mobile apps quickly and easily.
28
What is AWS KWS?
AWS KMS provides a highly available key storage, management, and auditing solution for you to encrypt data within your own applications and control the encryption of stored data across AWS services.
29
What is AWS Config?
AWS Config is a service that enables you to monitor, assess, and audit all changes made to your AWS resources.
AWS Config is a fully managed service that provides you with an AWS resource inventory, configuration history, and configuration change notifications to enable security and governance.
With AWS Config you can discover existing AWS resources, export a complete inventory of your AWS resources with all configuration details, and determine how a resource was configured at any point in time. These capabilities enable compliance auditing, security analysis, and resource change tracking.
30
One of the most important AWS best-practices to follow is the cloud architecture principle of elasticity. How does this principle improve your architecture’s design?
By automatically provisioning the required AWS resources based on changes in demand
31
What is Amazon Relational Database?
Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud.
It provides cost-efficient, resizable capacity while automating time-consuming administration tasks such as hardware provisioning, operating system maintenance, database setup, patching and backups.
It frees you to focus on your applications so you can give them the fast performance, high availability, security and compatibility they need.
Amazon RDS can be used to host Amazon Aurora, PostgreSQL, MySQL, MariaDB, Oracle, and Microsoft SQL Server databases.
32
What is Amazon Redshift
Amazon Redshift is not a MySQL database service. Amazon Redshift is a fully managed data warehouse service that makes it simple and cost-effective to analyze all your data using standard SQL and your existing Business Intelligence (BI) tools.
33
What is Amazon DynamoDB?
DynamoDB is serverless with no servers to provision, patch, or manage and no software to install, maintain, or operate. DynamoDB automatically scales tables up and down to adjust for capacity and maintain performance. Availability and fault tolerance are built in, eliminating the need to architect your applications for these capabilities.
Amazon DynamoDB is not a MySQL database service. Amazon DynamoDB is a fully managed NoSQL database service.
34
What is Amazon CloudWatch
Amazon CloudWatch is not a database service.
Amazon CloudWatch is a monitoring service that gives you complete visibility of your cloud resources and applications
You can use Amazon CloudWatch to collect and track metrics, collect and monitor log files, set alarms, and automatically react to changes in your AWS resources.
35
Which of the following services allows customers to manage their agreements with AWS?
AWS Artifact
36
What is AWS Artifact?
AWS Artifact is a self-service audit artifact retrieval portal that provides customers with on-demand access to AWS’ compliance documentation and AWS agreements.
You can use AWS Artifact Agreements to review, accept, and track the status of AWS agreements such as the Business Associate Addendum (BAA).
37
What is AWS Organizations?
AWS Organizations helps customers centrally govern their environments as they grow and scale their workloads on AWS.
Whether customers are a growing startup or a large enterprise, Organizations helps them to centrally manage billing; control access, compliance, and security; and share resources across their AWS accounts.
38
What is AWS Systems Manager?
AWS Systems Manager gives you visibility and control of your infrastructure on AWS.
Systems Manager provides a unified user interface so you can view operational data from multiple AWS services and allows you to automate operational tasks across your AWS resources.
39
What is AWS Certificate Manager?
AWS Certificate Manager is a service that lets you easily provision, manage, and deploy public and private Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services and your internal connected resources
40
In order to implement best practices when dealing with a “Single Point of Failure,” you should attempt to build as much automation as possible in both detecting and reacting to failure. Which of the following AWS services would help?
Auto Scaling, ELB
41
What is Amazon CloudFront?
Amazon CloudFront is a global content delivery network (CDN) service that gives businesses and web application developers an easy and cost effective way to distribute content (such as videos, data, applications, and APIs) with low latency and high data transfer speeds.
42
What is AWS Direct Connect?
AWS Direct Connect allows you to establish a dedicated network connection from your premises to AWS.
43
What is AWS Regions?
An AWS Region is a physical location in the world where AWS have multiple Availability Zones.
Availability Zones consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities.
44
What is Amazon VPN?
AWS VPN is comprised of two services: AWS Site-to-Site VPN and AWS Client VPN.
AWS Site-to-Site VPN enables you to securely connect your on-premises network or branch office site to AWS.
AWS Client VPN enables you to securely connect users (from any location) to AWS or on-premises networks.
45
Which of the following does NOT belong to the AWS Cloud Computing models?
- Software as a Service (SaaS)
- Platform as a Service (PaaS)
- Networking as a Service (NaaS)
46
What is Infrastructure as a Service (IaaS)?
Infrastructure as a Service (IaaS) contains the basic building blocks for cloud IT and typically provide access to networking features, computers (virtual or on dedicated hardware), and data storage space. IaaS provides you with the highest level of flexibility and management control over your IT resources and is most similar to existing IT resources that many IT departments and developers are familiar with today.
47
What is Platform as a Service (PaaS)
Platform as a Service (PaaS) removes the need for your organization to manage the underlying infrastructure (usually hardware and operating systems) and allows you to focus on the deployment and management of your applications.
This helps you be more efficient as you don’t need to worry about resource procurement, capacity planning, software maintenance, patching, or any of the other undifferentiated heavy lifting involved in running your application.
48
What is Software as a Service (SaaS) ?
Software as a Service (SaaS) provides you with a completed product that is run and managed by the service provider.
In most cases, people referring to Software as a Service are referring to end-user applications. With a SaaS offering you do not have to think about how the service is maintained or how the underlying infrastructure is managed; you only need to think about how you will use that particular piece of software.
A common example of a SaaS application is web-based email which you can use to send and receive email without having to manage feature additions to the email product or maintain the servers and operating systems that the email program is running on.
49
What is the AWS service that enables AWS architects to manage infrastructure as code?
AWS CloudFormation
50
What is Amazon SES?
Amazon SES refers to the Amazon Simple Email service. Amazon Simple Email Service (Amazon SES) is a cloud-based email sending service designed to help digital marketers and application developers send marketing, notification, and transactional emails.
51
What is Amazon EMR
Amazon EMR is used to run and scale Apache Spark, Hadoop, Presto, and other Big Data Frameworks.
Amazon EMR launches clusters in minutes. You don’t need to worry about node provisioning, infrastructure setup, Hadoop configuration, or cluster tuning. Amazon EMR takes care of these tasks so you can focus on analysis.
52
What is AWS CloudTrail?
AWS CloudTrail is an AWS service that can be used to monitor all user interactions with the AWS environment.
53
What do you gain from setting up consolidated billing for five different AWS accounts under another master account?
Each AWS account gets volume discounts
AWS consolidated billing enables an organization to consolidate payments for multiple AWS accounts within a single organization by making a single paying account.
For billing purposes, AWS treats all the accounts on the consolidated bill as one account.
54
What is AWS Partner Solutions?
AWS Partner Solutions (formerly AWS Quick Starts) outline the architectures for popular enterprise solutions on AWS and provide AWS CloudFormation templates to automate their deployment.
Each Partner Solution launches, configures, and runs the AWS compute, network, storage, and other services required to deploy a specific workload on AWS, using AWS best practices for security and availability.
55
A Japanese company hosts their applications on Amazon EC2 instances in the Tokyo Region. The company has opened new branches in the United States, and the US users are complaining of high latency. What can the company do to reduce latency for the users in the US while minimizing costs?
Deploying new Amazon EC2 instances in a Region located in the US
56
Which service provides DNS in the AWS cloud?
Route 53
57
What is Amazon Route S3?
Amazon Route 53 is a global service that provides highly available and scalable Domain Name System (DNS) services, domain name registration, and health-checking web services.
It is designed to give developers and businesses an extremely reliable and cost effective way to route end users to Internet applications by translating names like example.com into the numeric IP addresses, such as 192.0.2.1, that computers use to connect to each other.
Route 53 also simplifies the hybrid cloud by providing recursive DNS for your Amazon VPC and on-premises networks over AWS Direct Connect or AWS VPN.
58
What is Amazon Inspector?
Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS.
Amazon Inspector automatically assesses applications for vulnerabilities or deviations from best practices. After performing an assessment, Amazon Inspector produces a detailed list of security findings prioritized by level of severity. These findings can be reviewed directly or as part of a detailed assessment report which is available via the Amazon Inspector console or API.
To help get started quickly, Amazon Inspector includes a knowledge base of hundreds of rules mapped to common security best practices and vulnerability definitions. Examples of built-in rules include checking for remote root login being enabled, or vulnerable software versions installed. These rules are regularly updated by AWS security researchers.
59
What is Amazon SNS?
Amazon SNS is a pub/sub messaging service that enables you to decouple microservices, distributed systems, and serverless applications.
60
You want to run a questionnaire application for only one day (without interruption), which Amazon EC2 purchase option should you use?
On-demand instances
61
What are On-Demand instances?
With On-Demand instances, you pay for compute capacity by the hour or second (minimum of 60 seconds) with no long-term commitments. You can increase or decrease your compute capacity depending on the demands of your application and only pay for what you use.
The use of On-Demand instances frees you from the costs and complexities of planning, purchasing, and maintaining hardware and transforms what are commonly large fixed costs into much smaller variable costs. On-Demand instances also remove the need to buy “safety net” capacity to handle periodic traffic spikes.
There are no startup or termination fees associated with Amazon EC2.
62
Under the shared responsibility model, what is the responsibility of AWS?
Under the shared responsibility model, AWS is responsible for the hardware and software that run AWS services. This includes patching the infrastructure software and configuring infrastructure devices. As a customer, you are responsible for implementing best practices for data encryption, patching guest operating system and applications, identity and access management, and network & firewall configurations.
63
What are the principles identified by the well-architected framework
1- Stop guessing your capacity needs
2- Test systems at production scale
3- Automate to make architectural experimentation easier
4- Allow for evolutionary architectures
5- Drive architectures using data
6- Improve through game days
64
What is Amazon VPC?
Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define.
You have complete control over your virtual networking environment. Amazon VPC is not a managed service, you are responsible for managing almost everything when using the Amazon VPC service.
65
What is Amazon elastic Compute Cloud?
Amazon Elastic Compute Cloud (Amazon EC2) is a service that gives you complete control over your compute resources.
Apart from patching the underlying host - which is the responsibility of AWS - you are responsible for managing almost everything in your server instances when using Amazon EC2.
66
What is AWS IAM?
AWS Identity and Access Management (IAM) enables you to manage access to AWS services and resources securely.
Using IAM, you can create and manage AWS users and user groups, and use permissions to allow and deny their access to AWS resources.
67
What is the AWS service that provides a virtual network dedicated to your AWS account?
Amazon VPC
68
What is AWS Subnets?
A subnet is a range of IP addresses within a VPC.
69
What is AWS Dedicated Hosts?
An Amazon EC2 Dedicated Host is a physical server with EC2 instance capacity fully dedicated to your use.
Dedicated Hosts can save you money by enabling you to leverage your existing server-bound software license investments (e.g., Windows Server, Windows SQL Server, and SUSE Linux Enterprise Server) within EC2, subject to your license terms. Dedicated Hosts also give you more flexibility, visibility, and control over the placement of instances on dedicated hardware. This makes it easier to ensure you deploy your instances in a way that meets your compliance and regulatory requirements.
70
What is Horizontal Scaling?
Scaling horizontally takes place through an increase in the number of resources (e.g., adding more hard drives to a storage array or adding more servers to support an application).
This is a great way to build Internet-scale applications that leverage the elasticity of cloud computing.
71
What is Vertical Scaling?
Scaling vertically takes place through an increase in the specifications of an individual resource (e.g., upgrading a server with a larger hard drive, adding more memory, or provisioning a faster CPU).
On Amazon EC2, this can easily be achieved by stopping an instance and resizing it to an instance type that has more RAM, CPU, I/O,or networking capabilities. This way of scaling can eventually hit a limit and it is not always a cost efficient or highly available approach. However, it is very easy to implement and can be sufficient for many use cases especially as a short term solution.
72
Is horizontal scaling or vertical scaling easier to scale dynamically?
Horizontal Scaling
Vertical-scaling is often limited to the capacity constraints of a single machine, scaling beyond that capacity often involves downtime and comes with an upper limit. With horizontal-scaling it is often easier to scale dynamically by adding more machines in parallel. Hence, in most cases, horizontal-scaling is recommended over vertical-scaling.
73
You have set up consolidated billing for several AWS accounts. One of the accounts has purchased a number of reserved instances for 3 years. What is true regarding this scenario?
All accounts can receive the hourly cost benefit of the Reserved Instances
74
What does Amazon CloudFront use to distribute content to global users with low latency?
AWS Edge Locations
75
What is the five main benefits of AWS Organizations?
1) Centrally manage access polices across multiple AWS accounts.
2) Automate AWS account creation and management.
3) Control access to AWS services.
4) Consolidate billing across multiple AWS accounts.
5) Configure AWS services across multiple accounts.
76
What is IAM User Groups?
An IAM user group is a collection of IAM users - within the same AWS account - that are managed as a unit.
IAM user groups let customers specify permissions for multiple users, which can make it easier to manage the permissions for those users. For example, customers could have a user group called Admins and give that user group the types of permissions that administrators typically need.
77
What is the AWS database service that allows you to upload data structured in key-value format?
Amazon DynamoDB
78
What does the "Principle of Least Privilege" refer to?
You should grant your users only the permissions they need when they need them and nothing more
79
An organization has a large number of technical employees who operate their AWS Cloud infrastructure. What does AWS provide to help organize them into teams and then assign the appropriate permissions for each team?
IAM user groups
80
What is the advantage of the AWS-recommended practice of "decoupling" applications?
Reduces inter-dependencies so that failures do not impact other components of the application
As application complexity increases, a desirable attribute of an IT system is that it can be broken into smaller, loosely coupled components. This means that IT systems should be designed in a way that reduces interdependencies—a change or a failure in one component should not cascade to other components.
On the other hand if the components of an application are tightly coupled and one component fails, the entire application will also fail.
81
Adjusting compute capacity dynamically to reduce cost is an implementation of which AWS cloud best practice?
Implement elasticity
82
As part of the Enterprise support plan, who is the primary point of contact for ongoing support needs?
Technical Account Manager (TAM)
83
What is AWS Identity and Access Management (IAM) user?
An AWS Identity and Access Management (IAM) user is an entity that you create in AWS to represent the person or service that uses it to directly interact with AWS.
A primary use for IAM users is to grant individuals access to the AWS Management Console for interactive tasks and / or to make programmatic requests to AWS services using the API or CLI.
84
What is AWS Consulting Partners?
AWS Consulting Partners are professional services firms that help customers design, architect, build, migrate, and manage their workloads and applications on AWS.
Consulting Partners include System Integrators, Strategic Consultancies, Agencies, Managed Service Providers, and Value-Added Resellers.
85
What are the benefits of having infrastructure hosted in AWS?
All of the physical security and most of the data/network security are taken care of for you
Increasing speed and agility
86
What are AWS shared controls?
Shared Controls are controls which apply to both the infrastructure layer and customer layers, but in completely separate contexts or perspectives. In a shared control, AWS provides the requirements for the infrastructure and the customer must provide their own control implementation within their use of AWS services.
87
What should you do in order to keep the data on EBS volumes safe?
Creating snapshots of EBS Volumes can help ensure that you have a backup of your EBS volumes just in case any issues arise. You can use Amazon Data Lifecycle Manager (Amazon DLM) to automate the creation, retention, and deletion of EBS snapshots.
Automating snapshot management with Amazon DLM helps you to:
- Protect valuable data by enforcing a regular backup schedule.
- Retain backups as required by auditors or internal compliance.
- Reduce storage costs by deleting outdated backups.
- Create disaster recovery backup policies that back up data to isolated accounts.
88
What is S3 Intelligent-Tiering?
The S3 Intelligent-Tiering storage class is designed to optimize costs by automatically moving data to the most cost-effective access tier, without performance impact or operational overhead.
It works by storing objects in two access tiers: one tier that is optimized for frequent access and another lower-cost tier that is optimized for infrequent access
89
What is Amazon S3 Glacier Deep Archive?
Amazon S3 Glacier Deep Archive is an extremely low-cost storage service that provides secure, durable, and flexible storage for long-term data backup and archival.
90
What is AWS Snowball?
AWS Snowball is a petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS cloud.
Using Snowball addresses common challenges with large-scale data transfers, including high network costs, long transfer times, and security concerns.
AWS Customers use Snowball to migrate analytics data, genomics data, video libraries, image repositories, and backups. Transferring data with Snowball is simple, fast, secure, and can cost as little as one-fifth the cost of using high-speed internet.
91
What is AmazonSimple Queue Service (SQS)?
Amazon Simple Queue Service (SQS) is a fully managed message queuing service that enables you to send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available.
SQS lets you decouple application components so that they run independently, increasing the overall fault tolerance of the system. Multiple copies of every message are stored redundantly across multiple availability zones so that they are available whenever needed.
92
What is Amazon Connect?
Amazon Connect is a cloud-based contact center service that makes it easy for businesses to deliver customer service at low cost.
93
What is AWS Direct Connect?
AWS Direct Connect is a cloud service solution that is used to establish a dedicated network connection between your premises and AWS.
94
What is AWS Auto Scaling?
AWS Auto Scaling is the feature that automates the process of adding/removing server capacity (based on demand).
Autoscaling allows you to reduce your costs by automatically turning off resources that aren’t in use. On the other hand, Autoscaling ensures that your application runs effectively by provisioning more server capacity if required.
95
What is AWS Budgets?
AWS Budgets gives you the ability to set custom budgets that alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount.
96
What is AWS Elastic Load Balancer?
AWS Elastic Load Balancer (ELB) is a service that distributes the incoming application traffic to multiple targets that you define.
97
What is AWS Cost Explorer?
AWS Cost Explorer provides an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time.
98
What IS Amazon Aurora?
Amazon Aurora is a MySQL and PostgreSQL-compatible relational database built for the cloud.
Amazon Aurora combines the performance and availability of traditional enterprise databases with the simplicity and cost-effectiveness of open source databases. It delivers up to five times the throughput of standard MySQL and up to three times the throughput of standard PostgreSQL.
Amazon Aurora is designed to be compatible with MySQL and with PostgreSQL, so that existing applications and tools can run without requiring modification. It is available through Amazon Relational Database Service (RDS), freeing you from time-consuming administrative tasks such as provisioning, patching, backup, recovery, failure detection, and repair.
99
What is Amazon Neptune?
Amazon Neptune is a graph database service, not a MySQL database service. Amazon Neptune is used to build and run applications that work with highly connected datasets, such as social networking, recommendation engines, and knowledge graphs.
100
What are Spot instances?
Spot instances provide a discount (up to 90%) off the On-Demand price. The Spot price is determined by long-term trends in supply and demand for EC2 spare capacity. If the Spot price exceeds the maximum price you specify for a given instance or if capacity is no longer available, your instance will automatically be interrupted.
Spot Instances are a cost-effective choice if you can be flexible about when your applications run and if you don't mind if your applications get interrupted. For example, Spot Instances are well-suited for data analysis, batch jobs, background processing, and optional tasks.
101
What are Reserved instances?
Reserved instances are recommended for Customers who can commit to using EC2 over a 1 or 3-year term to reduce their total computing costs. Even if the project will last for more than a year, the cost-benefit for acquiring Reserved Instances is not as great as the cost-benefit from using Spot Instances. The Spot option provides the largest discount (up to 90%).
102
What are Dedicated Instances?
Dedicated instances are used when you need your instances to be physically isolated at the host hardware level from instances that belong to other AWS accounts. Dedicated instances are significantly more expensive than Spot Instances.
103
What is AWS Abuse Team?
The AWS Abuse team can assist you when AWS resources are being used to engage in the following types of abusive behavior:
I. Spam
II. Port scanning
III. Denial of service attacks (DOS)
IV. Intrusion attempts
V. Hosting objectionable or copyrighted content
VI. Distributing malware
104
What is AWS Management Console?
The AWS Management Console allows you to access and manage Amazon Web Services through a simple and intuitive web-based user interface. You can also use the AWS Console mobile app to quickly view resources on the go.
105
What is AWS CLI?
The AWS Command Line Interface (CLI) is a unified tool to manage your AWS services. With just one tool to download and configure, you can control multiple AWS services from the command line and automate them through scripts.
106
What is AWS SDK?
The AWS SDK (Software Development Kit) allows you to interact with AWS services using your preferred programming language.
107
What is AWS Finance team?
AWS Finance Team provides data driven analysis, strategic decision support, financial planning, and controllership to teams that plan and build data centers, design and source servers, and develop and sell cloud services at massive scale to developers and businesses all over the world.
108
What is Amazon VPC?
You can use the Amazon Virtual Private Cloud console to launch AWS resources, such as Amazon EC2 instances. You can use it to specify an IP address range for the VPC, add subnets, associate security groups, and configure route tables.
109
What is Amazon EBS volume?
An Amazon EBS volume is a durable, block-level storage device that you can attach to a single EC2 instance.
You can use EBS volumes as primary storage for data that requires frequent updates, such as the system drive for an instance or storage for a database application. You can also use them for throughput-intensive applications that perform continuous disk scans.
110
What is AWS Storage Gateway?
AWS Storage Gateway is not a caching service, it is a hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage.
111
What is Amazon ElastiCache?
AWS Storage Gateway is not a caching service, it is a hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage.
112
What is AWS Cost & Usage Report?
The AWS Cost & Usage Report is your one-stop shop for accessing the most detailed information available about your AWS costs and usage.
The AWS Cost & Usage Report lists AWS usage for each service category used by an account and its IAM users in hourly or daily line items, as well as any tags that you have activated for cost allocation purposes.
113
What are the use cases for Amazon CloudFront?
1- Accelerate static website content delivery.
- CloudFront can speed up the delivery of your static content (for example, images, style sheets, JavaScript, and so on) to viewers across the globe. By using CloudFront, you can take advantage of the AWS backbone network and CloudFront edge servers to give your viewers a fast, safe, and reliable experience when they visit your website.
2- Live & on-demand video streaming.
- The Amazon CloudFront CDN offers multiple options for streaming your media – both pre-recorded files and live events – at sustained, high throughput required for 4K delivery to global viewers.
3- Security.
- CloudFront integrates seamlessly with AWS Shield for Layer 3/4 DDoS mitigation and AWS WAF for Layer 7 protection.
4- Customizable content delivery with Lambda@Edge.
- Lambda@Edge is a feature of Amazon CloudFront that lets you run code closer to users of your application, which improves performance and reduces latency.
114
What is AWS CloudFormation?
AWS CloudFormation allows you to use programming languages or a simple text file to model and provision, in an automated and secure manner, all the resources needed for your applications across all regions and accounts.
115
What is Amazon Kinesis Video Streams?
Amazon Kinesis Video Streams enables you to securely stream video from connected devices (IoT devices) to AWS for analytics, machine learning (ML), playback, and other processing.
Kinesis Video Streams automatically provisions and elastically scales all the infrastructure needed to ingest streaming video data from millions of devices. It durably stores, encrypts, and indexes video data in your streams, and allows you to access your data through easy-to-use APIs.
